Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability

Microsoft Internet Explorer 'Style' Object Remote Code Execution Vulnerability

References:

December 2009 Bulletin Release Advance Notification (Microsoft)
Microsoft Internet Explorer Homepage (Microsoft)
Microsoft Internet Explorer HTML Layout Engine Uninitialized Memory Vulnerabilit (iDefense Labs)
Microsoft Security Advisory 977981 Released (Microsoft)
Nortel Enterprise Response to Microsoft Security Bulletin MS09-072 (Nortel Networks)
Code to mitigate IE STYLE zero-day (ds.adv.pub@gmail.com)
IE7 (info@securitylab.ir)
Some more details on IE STYLE zero-day (ds.adv.pub@gmail.com)
2009009911, Rev 2 Nortel Enterprise Response to Security Bulletin MS09-072 (Nortel Networks)
Microsoft Security Advisory (977981) (Microsoft)
Microsoft Security Bulletin MS09-072 (Microsoft)
Vulnerability Note VU#515749 Microsoft Internet Explorer CSS style element vulne (US-CERT)

Privacy Statement
Copyright 2010, SecurityFocus